The Hacker News

Oracle EBS Under Fire as Cl0p Exploits CVE-2025-61882 in Real-World Attacks

CrowdStrike links Oracle EBS CVE-2025-61882 (CVSS 9.8) to Cl0p with moderate confidence; CISA adds to KEV, patch by Oct 27, ...

MCP stacks have a 92% exploit probability: How 10 plugins became enterprise security's biggest blind spot

Ten MCP plugins are all attackers need to achieve a 92% exploit success rate, putting thousands of enterprise AI servers at immediate risk. CISOs and SOC leaders need to secure MCP now, before trivial ...

Five lessons learned from the M&S, Co-op, and Harrods security breaches

The M&S and Co-op breaches exposed a hard truth: once an attacker is inside, recovery is excruciatingly slow if your systems aren’t segmented, your backups aren’t offline, or your teams aren’t ...